Smart City Cyber Security

Cyber Security for the development of Smart Cities

  • Photo by Tyler Lastovich on Pexels.com

    After several months without being able to post any new material to this site i am now in a position to return to produce new articles and resources. I am going to pick up on a topic i made last year on the use of Cisco SAFE as the means to define a security reference architecture. I want to cover, in this post, some of the preparatory activities associated with the development of a reference architecture and its various components. For something as significant as a resource that will be used to guide the design, development and operations of a Smart City, it is key to ensure that the practice of reference architecture is accepted and promoted. this is especially important as a reference architecture must adapt and evolve with the growth of the City.

    The stakeholders of the reference architecture have the following requirements and responsibilities to ensure a reference architecture fulfils its role and returns value.

    1] Effective Governance through policy and process to enable the reference architecture to provide the necessary decision support to its users

    2] Defined principles and their associated attributes to provide design instruction and guidance through documentation and models

    3] Business value that is evident as early as possible in either the design or deployment of single or multiple solutions and services.

    4] Agility and flexibility to adapt to the challenges and constraints that are part of city transformation projects and programmes.

    5] Solution guidance with the authority to empower the designers and developers with blueprints and controls to deliver effective output

    Finally, it is important to produce a reference architecture in a way that enables the requirements above. The solution for a reference architecture has to enable designers and architects to build the initial draft and then continuously manage, through consultation and validation, future iterations. A cloud-based design and authoring platform with document management, version control and collaborative tools should provide the required agility and flexibility to cover a wide range of user types and user scenarios.

    I plan to build up the different parts of a reference architecture, with a focus on security, in future posts as it builds over the contextual, conceptual, logical and physical views.

  • Photo by Tyler Lastovich on Pexels.com

    I have published an overview of a POC i have been recently working on, under the Digital Twin menu, to determine how the design of several Digital Twins in Protege, as an OWL ontology, can then be used to examine data models and make inferences to further context and reference details. The data is analysed in Neo4j and uses their Neosemantics Plugin to upload the Digital Twin ontology. The POC is built up as follows:

    Scenario
    A near future scenario describing the monitoring of the interaction between connected mobility such as Cars, eScooters and eBikes and City Street Infrastructure for security events and cyber attacks.

    Data
    Event and security event data is derived from the different assets directly or from cloud based City Infrastructure management systems and mobility Backend systems.

    Solution
    Using data models, threat models, digital twins and event data derived from asset transactions, interactions and normal operations.

    [In this POC i have also used the AWS IOT Things Graph Data Model (TDM) domain constructs to examine how data is used to support investigation and monitoring.]

    Proof of Concept Contents
    AWS IOT Things Graph Data Model (TDM) Security Use Cases
    Model the Smart City Digital Twin Environment
    Smart City Digital Twin OWL Ontology Design
    Digital Twin data integration with Neo4j
    Analysis of Smart City Digital Twin and reference data
    Vehicle Function and Traffic Light Digital Twins security scenario

    PDF guide to a Digital Twin POC

  • Photo by Tyler Lastovich on Pexels.com
  • Photo by Tyler Lastovich on Pexels.com

    I recently came across the Centre for Digital Built Britain, a major programme to advance the development of a digital Great Britain.

    The Centre for Digital Built Britain is a partnership between the Department of Business, Energy & Industrial Strategy and the University of Cambridge to understand how the construction and infrastructure sectors could use a digital approach to better design, build, operate, and integrate the built environment.

    Mission:
    The mission of CDBB is to develop and demonstrate policy and practical insights that will enable the exploitation of new and emerging technologies, data and analytics to enhance the natural and built environment, thereby driving up commercial competitiveness and productivity, as well as citizen quality of life and well-being.

    Within this programme is a further project called the National Digital Twin Programme.

    The CDBB has established the Digital Twin Hub (DT Hub), a collaborative web-enabled community for those who own, or who are developing, digital twins within the built environment.

    The DT Hub provides some interesting resources and a programme of work worth following. I am going to be covering Digital Twins and their role to support cyber security for Smart Cities in the Digital Twin Section.

  • Photo by Tyler Lastovich on Pexels.com

    Whilst i didn’t get the chance to attend all of the sessions today i was very impressed with those i did attend. I did enjoy the opening session – A Conversation with Minister Takuya Hirai: a New Digitalization Strategy for Japan – and in particular their plans for a Digital Agency and the principles they put forward.

    The second session if found very insightful was – How can Micro-mobility Support a Green and Sustainable Recovery? – covering the Seat Mo project in Barcelona.

    Finally, there were a number of discussion with public sector representatives discussing the challenges and opportunities going forward post Covid19. Listening to the comments made it may well be that the pandemic resets a lot of the views of smart city projects and refocus their priorities.

  • Photo by Tyler Lastovich on Pexels.com

    Starting tomorrow is the Smart City Expo World Congress virtual event. Details can be found at SmartCityExpo website.

    Covid19 is a common theme across the Agenda but there are a host of other events covering the following themes:-

    • Adapting urban mobility to safe and sustainable travel
    • Technologies to address global urban challenges
    • Redesigning cities and urban living for all
    • Ensuring an inclusive economic recovery
    • Resilient infrastructures and urban environments to build back better
    • The future of retail in a digital era

    Whilst there are no sessions specifically addressing cyber security there are several that include security and safety as topics:

    How will the Combination of 5G and AI Empower Smart City Development?

    Inclusive Technology and Digital Rights

  • Photo by Tyler Lastovich on Pexels.com

    Over the last few months i have had little time to continue my research and writing for this blog hence the gap of three months. I am now able to continue and will pick of where i left off with SAFE modelling, NIST CSF and Smart City Cyber Security as well as new topics such as Digital Twins, Drones and the impending ISO 21434 standard.

    Several things have caught my attention over the last few months including a recent news article from Edinburgh City Council about their plans for a Smart City Operations Centre. The impact of Covid19 on cities and its citizens has been widely reported as well as a number of high profile cyber attacks in the UK on major Universities as students returned in September. One can assume these were opportunistic attacks where the perpetrators of the ransomware knew how much chaos they would cause. This may be a sign of attack types of the future where city services and infrastructure will be targeted during major events. So it is interesting to read the plans of Edinburgh Council and i have highlighted a list of some of them below.

    Link to news article and a statement, the council said its plans will include:

    • responding to the needs of a post-Covid capital city by driving forward digital transformation
    • bridging the digital divide between Edinburgh’s most and least affluent areas, providing schools with the most advanced networks and kit
    • creating a smart city operations centre to deliver transformative digital services using technologies such as the artificial intelligence (AI), the Internet of Things (IoT) and advanced analytics
    • installing smart city systems such as intelligent traffic signals, smart streetlights that can control their own luminosity, street bins that can signal when they’re full and smart sensors in council homes to predict, manage and prevent damage to properties such as damp
    • increasing digital security to protect the council’s network and data
    • reducing the council’s carbon footprint by reducing paper and print, reducing waste, and reusing or recycling equipment
    • enhancing options for remote working for council employees
    • taking advantage of global trends such as moving to cloud-based services to reduce costs.

  • Photo by Tyler Lastovich on Pexels.com

    I am going to use the Cisco SAFE security reference architecture as a complimentary method to NIST CSF to help explain how these methods can be used to support a Smart City Cyber Security Strategy. SAFE is further expanded through its identification of threat types and mapping to MITRE ATT&CK. In particular i will focus on how SAFE uses the Business Flow model to define the roles, technologies, capabilities and domains across an end to end view of connectivity. The examples of this can be found in this overview guide.

    The SAFE method organises security by using two core concepts: Places in the Network (PINs) and Secure Domains. These concepts should relate to Smart Cities but i have adjusted two to make a better association.

    PINs reference examples of locations that are found in networks and the infrastructure needed to create them:

    • Data center
    • Branch (Sub-organisation connected to City or City Administration)
    • Campus (City Administration)
    • WAN
    • Internet edge
    • Cloud

    Secure Domains are operational areas used to protect these locations. They are security concepts that traverse an entire network:

    • Management
    • Security intelligence
    • Compliance
    • Segmentation
    • Threat defence
    • Secure services

    Access to the Cisco SAFE documentation and guides can be found through:-

  • Photo by Tyler Lastovich on Pexels.com

    The investment into a smart city cyber security strategy will be considerable, in both monetary and resource effort, so it is very important to define the variety of strategic context for senior stakeholders and those involved in operations. Assumptions are often too easily made on the basis that the reasons, goals and objectives are fully understood by all involved in the strategy. “Isn’t it obvious” is a phrase often used to describe a strategic requirement and in turn, it is regularly met by a general agreement, often from those who don’t fully understand and are too shy to question.

    Strategic context requires as much breadth and depth as needed to ensure that the meaning and reasoning is clear and supported by sufficient evidence. This is where the use of standards and best practice are very important in supporting strategic context by breaking the context down into a framework that is divided into sections and sub-sections and with a clear course of action.

    There are several important areas of the context within a smart city cyber security strategy but there is one, in particular, that has to be understood and designed to continually evolve and adapt to City growth and changes and that is knowledge management. Cyber security operations collect data and transform it into usable information and then finally into knowledge to support processes, decisions and actions. Data are just objective facts, generated specifically e.g. from a sensor, or as a byproduct e.g. events and logs. Data becomes useful information when it becomes analysed and categorised and placed in context and thus becomes relevant and has a purpose. Information becomes knowledge – as per cyber security operations – when it is used to assess consequences (Triage and Incident Management), establish patterns or connections and as evidence in reporting and decision making.

    A good example of cyber security in the wider context of a Smart City strategy can be found within the City of Sydney, Australia, Smart City Framework and the PDF report – Smart City Strategic Framework in alignment with ISO 37106:2018. To quote from the publication:

    Strategic Outcome 3: Priority One: Data-driven monitoring, prediction and management of city conditions and impacts of shocks and stresses.

    Due to the significant value of data, the City sees cyber resilience as a foundational component for overall resilience. Consequently, the City has adopted a ‘security by design’ approach to its smart transformation, embedding security measures and protocols across its digital infrastructure from the beginning in order to protect long-term integrity.

    Photo by Mudassir Ali on Pexels.com
  • Photo by Tyler Lastovich on Pexels.com